This article is written for those who were searching for a detailed and simple for the understanding guide on how to install Active Directory Domain Services на Windows Server 2008 R2.

In this guide, we will consider the case when you already have a server with Windows Server 2008 R2 installed on it.

You can read more about how to install Windows Server 2012 R2 in my guide «Installing Windows Server 2012 R2». You can learn how to install Active Directory Domain Services on Windows Server 2012 R2 by reading «Installing Active Directory Domain Services on Windows Server 2012 R2».

I always recommend using English editions of Windows Server. As practice shows, the original (English) versions of Windows work more stable, moreover, it will be easier for you to communicate in the same language with professionals in case of problems or if you want to exchange experiences.

Before you begin installing the Active Directory Domain Services role, you must give the server the correct name in accordance with the standards of your organization, and then specify the static IP address, subnet mask, gateway, and DNS server address.

Go into the system under an account with administrator rights and go to the “Start” menu, right-click on “Computer” and select “Properties”.

Next, in the “System” window, in the “Computer name, domain, and workgroup settings” section, click on the “Change settings” button.

In the “System Properties” window on the “Computer Name” tab, click on the “Change” button.

I strongly recommend that you consider in advance how the servers in your organization will be called.

Next, indicate the new server name in the “Computer Name” field and click on the “OK” button.

The system will warn that to apply the new settings, you must restart the server.

Click the “OK” button.

In the “System Properties” window, click on the “Close” button.

Now the system will offer to restart the server for the new settings to take effect.

Click on the “Restart Now” button.

Next, the server will restart.

Now you need to register a static IP address in the network connection settings.

Go into the system under an account with administrator rights and go to the “Start” menu, right-click on “Network” and select “Properties”.

Next, in the “Network and Sharing Center” window, click on the “Change adapter settings” button.

Now right-click on the “Ethernet” network connection and select “Properties”.

Select “Internet Protocol Version 4 (TCP / IPv4)” and click on the “Properties” button.

Next, select “Use the following IP address” and specify a free IP address, subnet mask and gateway. Please note that you must understand in advance how your network is structured and know which IP addresses are free.

In the “Preferred DNS server” field, specify the IP address of this server, since the “DNS Server” role, which is installed together with the “Active Directory Domain Services” role, will be present on your server.

Click on the “OK” button.

In the “Local Area Connection Properties” window, click the “Close” button.

Now you are ready to install the Active Directory Domain Services role.

Open “Server Manager” and in the item “Roles” select “Add Roles”.

Click on the “Next” button.

Select the “Active Directory Domain Services” role.

In the next step, the Role Installation Wizard will warn you that you need to install several components to install the Active Directory Domain Services role.

Click on the “Add Required Features” button.

At this point, choosing the DNS Server role is optional. It will be installed later.

Click on the “Next” button.

Further, the Role Installation Wizard invites you to learn more about the Active Directory Domain Services role.

Click on the “Next” button.

In order to start the installation of the selected role, click on the “Install” button.

The installation of the selected role and the necessary components for it began.

The installation of the Active Directory Domain Services role is complete.

Now click on the button “Close this wizard and launch the Active Directory Domain Services Installation Wizard (dcpromo.exe)” in order to increase the role of your server to the level of a domain controller.

I strongly recommend that you consider in advance which domain name you will use when adding a new forest.

Click on the “Next” button.

Further, it is offered to familiarize additional information concerning the functionality of Windows Server 2008 R2.

Click on the “Next” button.

This guide discusses adding a new forest, so in the “Active Directory Domain Services Installation Wizard” window, select “Create a new domain in a new forest”.

Click on the “Next” button.

In the field “FQDN of the new forest root domain” indicate the desired name for the root domain.

Click on the “Next” button.

The next step is to choose the functional level of the new forest and root domain.

If you are adding a new forest and plan to use servers based on the Windows Server 2008 R2 operating system in the future, then select “Windows Server 2008 R2”.

Click on the “Next” button.

For the domain controller to work correctly, the “DNS server” role must be set.

Select “DNS server” and click on the “Next” button.

At this point, the AD DS Configuration Wizard will warn you that delegation for this DNS server cannot be created.

Click on the “Yes” button.

Now you can change the paths to the AD DS database directories, log files, and the SYSVOL folder. I recommend leaving these defaults.

Click on the “Next” button.

Specify the password for DSRM (Directory Service Restore Mode – Directory Service Restore Mode) and click on the “Next” button.

The next step displays a summary of the server configuration.

Click on the “Next” button.

The process of increasing the server role to the level of a domain controller has begun.

The process of upgrading the server to the domain controller level is complete.

Click on the “Finish” button.

Now the system will offer to restart the server for the new settings to take effect.

Click on the “Restart Now” button.

Next, the server will restart.

The promotion of the server to the domain controller level is completed.

To manage users, groups, and other Active Directory objects, you can use the Active Directory Users and Computers snap-in familiar to many.

Log in under the account with the rights of the domain administrator.

Go to the “Start” menu and select “Administrative Tools”, then select “Active Directory Users and Computers”.

The Active Directory Users and Computers snap-in opens.

Author

Hi, I’m Vladimir Mikhalev, but my friends call me Valdemar. I have a lot of experience in the design and maintenance of various information systems. On my website, you will find detailed and clear guides for setting up IT solutions. Dive into the ocean, full of positive and technology! For cooperation: callvaldemar@gmail.com

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.